|2019-02-05||Contact Form Email <= 1.2.65 - Multiple Cross-Site Scripting (XSS) & CSRF||fixed in version 1.2.66|
|2016-07-24||Contact Form to Email <= 1.1.47 - Authenticated Reflected Cross-Site Scr...||fixed in version 1.1.48|
|2015-05-13||Contact Form To Email <= 1.1.4 - CSRF & XSS||fixed in version 1.1.5|
Is this your plugin?
We offer WordPress plugin security testing to help identify security vulnerabilities within your plugin. Please note that this is a paid service. If you are interested in talking about having your plugin tested by WordPress security experts, get in touch.